Join a team dedicated to delivering outstanding client service.

Cox & Palmer is a full-service, top-ranked Atlantic Canadian law firm with the knowledge and experience clients rely upon for solid legal solutions. The firm prides itself on a collegial work atmosphere and supportive team environment.

We hire self-motivated, team-minded individuals with a strong work ethic, integrity and a commitment to client service.

This role is responsible for overseeing the Enterprise Architecture and Information Security for Cox & Palmer in Atlantic Canada. Defining the overall strategy, establishing security architecture, policies, procedures, standards, and controls.

The IT governance and compliance function includes managing assessments and audits used to measure our security effectiveness, both internal and external.

Focus on: Cyber Security, Firewalls, Email Protection, Best Practices, Aligned to Legal Industry Standards (Canada regulations, for data protection, PIPEDA, HIPPA, SOC 2 etc.)

Standardization of Firewalls Policies, Processes, I.e.. Windows Updates, Patches, etc. across all locations.

Reporting directly to the Firm/Regional Chief Information Officer (CIO), this position will work closely with the IT team and leaders of the various business units to both share the corporate security vision and to solicit their involvement in achieving higher levels of enterprise security.

SUMMARY OF RESPONSIBILITIES

• Develop, define, and implement the enterprise cyber security architecture, policies, procedures, standards, and controls.
• Support contingency planning, business continuity management, and IT disaster recovery.
• Monitor advancements in cyber security and information privacy laws and maintain up-to-date knowledge of the IT security industry to ensure organizational adaptation and compliance; design and execute audit procedures and manage compliance testing.
• Select, acquire, and oversee the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
• Conduct internal security risk assessments and security compliance audits; coordinates third-party audits and questionnaires.
• Ensure the confidentiality, integrity and security of the data residing on or transmitted to/from/through enterprise applications, workstations, servers, and other systems and in databases and other data repositories.
• Responsible for completion of periodic cyber risk review documentation as part of companywide risk management processes
• Overall responsibilities can evolve as the role is implemented
• Document, investigate, and report cybersecurity compliance issues, risks, and incidents, where necessary, and managing resolution of security related technology audit findings
• Lead the escalation and resolution of risk and compliance issues with appropriate stakeholders including business, security, legal, IT, and customers.

SKILLS & QUALIFICATIONS

• College diploma or university degree in computer science or a technology-related field or an equivalent amount of work experience
• At least 5 years of security-focused experience
• One or more relevant security-related designations
• Extensive experience in enterprise security architecture design and security document creation
• Experience with IT governance, risk, and compliance management methodologies and practices as well as specific operational impacts of cybersecurity lapses
• Knowledge of computer operating systems, networking concepts and protocols and network security methodologies
• Knowledge of cyber threats and vulnerabilities

APPLY

This position will remain posted until successfully filled.

Please click Apply Now to apply.

---

Cox & Palmer is committed to equity, diversity and inclusion in the workplace and is a member of the Canadian Centre for Diversity & Inclusion, Pride at Work Canada and the Law Firm Diversity and Inclusion Network (LFDIN).